Hi John (& co), Thanks a bucket for this :-) Pete.
On 11/04/14 06:45, John Crispin wrote:
Heartbleed - libopenssl AA binary feed update we updated the AA release. the files libopenssl_1.0.1e-1_*.ipk have been replaced with libopenssl_1.0.1g-1_*.ipk and the Packages index was updated. If you use openssl on your unit you need to run : # opkg update # opkg upgrade libopenssl In order to ensure that all affected services are using the updated OpenSSL library it is recommended to reboot the device after applying the upgrade. To find out more about the bug go to - http://heartbleed.com/ Note that default OpenWrt installations are not vulnerable to the particular bug, neither the builtin SSH server nor the optional LuCI SSL support rely on OpenSSL for cryptography. The OpenSSL library is not installed within the stock images available on the download server. This is not a lightweight bug. Please take it serious and check your unit. OpenWrt Developers _______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
_______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
